Malware

About “Midie.104798 (B)” infection

Malware Removal

The Midie.104798 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Midie.104798 (B) virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Dynamic (imported) function loading detected
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Midie.104798 (B)?



File Info:

name: 526AD242CFBD950A4296.mlw
path: /opt/CAPEv2/storage/binaries/5fdf474415a069fe2719581a29f9290a447d64257000ded4ccdc9097a254df41
crc32: BC3A8FD0
md5: 526ad242cfbd950a42965efacba2daed
sha1: 7d336303426bdfbf65bef494b1282a3ecede2808
sha256: 5fdf474415a069fe2719581a29f9290a447d64257000ded4ccdc9097a254df41
sha512: dac0095f741d31169431777377b19dcc788aa368ea120db6962399363bc8c2b3aff9bd8a43754b5a06e120ae154a1fbf20819015b31b5de703e8d66315b1c8d6
ssdeep: 12288:o2TPsVLgO3KWpTVIe7nP6rgflee90ZPoiiP83wTS+ofZI:o2LgwBe7nyYlee2doiiPHofZI
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1DBF48B7E37A17CA5FC2B0D749974C4ACC6535B10062F89C31BE56B9B6E748809BF2878
sha3_384: 53b3f4797c609b9f3cce1fb0ea1a597b2dfb1a75b0bce277edcd12f65e76de010f6c8291202107344db83d0447933a2a
ep_bytes: eb2c00d2cb01b0a008964bfda5e33412
timestamp: 2021-10-21 06:30:13


Version Info:

FileVersion: 1.0.0.0
FileDescription: 易语言程序
ProductName: 易语言程序
ProductVersion: 1.0.0.0
LegalCopyright: 作者版权所有 请尊重并使用正版
Comments: 本程序使用易语言编写(http://www.eyuyan.com)
Translation: 0x0804 0x04b0

Midie.104798 (B) also known as:

BkavW32.AIDetect.malware1
LionicHacktool.Win32.Convagent.x!c
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Midie.104798
FireEyeGeneric.mg.526ad242cfbd950a
ALYacGen:Variant.Midie.104798
CylanceUnsafe
K7AntiVirusTrojan ( 0040f54a1 )
AlibabaPacked:Win32/MultiPacked.b08e6414
K7GWTrojan ( 00539b2c1 )
Cybereasonmalicious.2cfbd9
BitDefenderThetaGen:NN.ZexaF.34062.U80@a8B9OMob
CyrenW32/A-8128ee96!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Packed.FlyStudio.AA potentially unwanted
TrendMicro-HouseCallTROJ_GEN.R035C0PL621
Paloaltogeneric.ml
KasperskyVHO:Packed.Win32.Convagent.gen
BitDefenderGen:Variant.Midie.104798
NANO-AntivirusVirus.Win32.Agent.dvixmz
AvastWin32:Malware-gen
RisingPacker.Win32.Agent.f (CLASSIC)
Ad-AwareGen:Variant.Midie.104798
EmsisoftGen:Variant.Midie.104798 (B)
ComodoTrojWare.Win32.Agent.OSCF@5rs7jr
TrendMicroTROJ_GEN.R035C0PL621
McAfee-GW-EditionBehavesLike.Win32.Autorun.bc
SophosML/PE-A + W32/Pidgeon-A
SentinelOneStatic AI – Malicious PE
GDataWin32.Application.PUPStudio.A
MAXmalware (ai score=80)
Antiy-AVLTrojan/Generic.ASMalwS.34E6047
GridinsoftRansom.Win32.Sabsik.sa
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
CynetMalicious (score: 100)
AhnLab-V3Packed/Win.MultiPacked.R456026
Acronissuspicious
McAfeeFlyagent.d
VBA32Trojan.Sabsik.FL
MalwarebytesPUP.Optional.ChinAd
APEXMalicious
TencentWin32.Packed.Multipacked.Stug
IkarusTrojan-Downloader.Win32.Wauchos
MaxSecureDropper.Dinwod.frindll
FortinetW32/MultiP.B!tr
AVGWin32:Malware-gen
PandaTrj/Genetic.gen
CrowdStrikewin/malicious_confidence_90% (W)

How to remove Midie.104798 (B)?

Midie.104798 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment